[Dovecot] client certs with godaddy ssl cert

tomas at tuxteam.de tomas at tuxteam.de
Fri Oct 3 20:33:34 EEST 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, Oct 03, 2008 at 07:18:46PM +0300, Timo Sirainen wrote:
> On Oct 2, 2008, at 6:59 AM, Harondel J. Sibble wrote:
>
>>> Dovecot does have to trust the signing cert for the clients (i.e. it 
>>> can't
>>> just be looking at some default bundle of commercial CA's) but that's not
>>> really connected to its server cert.
>>
>> Yes, I thought so and that is exactly the crux of my problem, how do I get
>> dovecot to trust both cert chains, GoDaddy and my self signed client certs
>> simultaneously? I can't seem to find anything on that specific issue.

[...]

> I'd guess you just put all the certs to the same file.

Yes, that's how it is supposed to work. In whatever file you keep your
root certificates, you just concatenate them all (and the CRLs, the
Certificate Revocation Lists). The Dovecot Wiki confirms that [1]

[1] <http://wiki.dovecot.org/SSL/DovecotConfiguration#head-c61be71adc5d146a3acea0a608e528e110ccac5e>

Regards
- -- tomás
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFI5lduBcgs9XrR2kYRAg0JAJ0Tqz9ZjSpLA8xsbSDecmbBEEuH4wCeKUaV
yqhu+5X3Sb+OA0jvTTRHlYk=
=nX1o
-----END PGP SIGNATURE-----


More information about the dovecot mailing list